4c469dd4c3ac7c1cb0bc415eb42868d1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4c469dd4c3ac7c1cb0bc415eb42868d1_JaffaCakes118
Size

515KB
MD5

4c469dd4c3ac7c1cb0bc415eb42868d1
SHA1

0ce927128a2d3a135ed5b7b2682d6743be7c01d0
SHA256

20192cfd6a3f6a8a80db3b5351fd6f49c324e0ee4abcd5ef8041d941829a112e
SHA512

4a23594bfd27b69a94f9df2267cb8495393844aa6cc5f85a7e7c8b2931fdfbb5b3d6c9a7cd1595ddf4170dca73a59b5acc953b7d2cc94f6c6266aa6ee8e5f01e
SSDEEP

12288:/h388ca2p2o+iGt3Xzkp5OMDux8F7IH87njGKC:/F88cLp+iI3XzK5OMCmF0HMjG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c469dd4c3ac7c1cb0bc415eb42868d1_JaffaCakes118

Files

4c469dd4c3ac7c1cb0bc415eb42868d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d60282d2d82a5ae3de914737116d0eb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

VkKeyScanA
RegisterClassA
CharLowerW
RegisterClassExA
UnionRect
PaintDesktop

comctl32

InitCommonControlsEx

shell32

ExtractIconEx
SHGetSpecialFolderPathW
SHEmptyRecycleBinA
ExtractAssociatedIconExA
SHAppBarMessage

kernel32

WritePrivateProfileSectionW
HeapSize
GetEnvironmentStringsW
TlsSetValue
GetLogicalDriveStringsW
CreateMutexA
FlushFileBuffers
GetOEMCP
GetDateFormatA
LCMapStringA
FreeLibrary
SetConsoleCtrlHandler
LoadLibraryA
TlsGetValue
TlsFree
GetCommandLineA
IsDebuggerPresent
GetStringTypeW
SetConsoleCursorInfo
HeapFree
GetFileAttributesExA
GetConsoleCP
EnterCriticalSection
GetCurrentProcessId
GetACP
HeapDestroy
GetStartupInfoA
IsValidLocale
VirtualQuery
InterlockedDecrement
WaitForDebugEvent
GetLocaleInfoA
VirtualFree
GetCurrentThreadId
GetDiskFreeSpaceA
CompareStringW
VirtualAlloc
RtlUnwind
SetEnvironmentVariableA
WriteFile
CloseHandle
InterlockedIncrement
GetConsoleMode
GetCurrentProcess
EnumDateFormatsExA
WriteConsoleA
OpenMutexA
ReadFile
GetLastError
WriteConsoleW
GetTickCount
GetFileType
GetProcessHeap
GetCurrentThread
Sleep
InterlockedExchange
GetEnvironmentStrings
GetCPInfo
GetUserDefaultLCID
InitializeCriticalSection
HeapAlloc
FreeEnvironmentStringsW
GetTimeFormatA
GetStdHandle
DeleteCriticalSection
CreateFileA
TerminateProcess
GetModuleFileNameA
FreeEnvironmentStringsA
CompareStringA
LeaveCriticalSection
GetModuleHandleA
GetSystemDirectoryW
TlsAlloc
LocalLock
ExitProcess
GetLocaleInfoW
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetConsoleOutputCP
SetHandleCount
WideCharToMultiByte
HeapCreate
IsValidCodePage
SetStdHandle
GetPriorityClass
HeapReAlloc
UnhandledExceptionFilter
EnumSystemLocalesA
GetProcAddress
LCMapStringW
SetFilePointer
GetStringTypeA
GetVersionExA
ConnectNamedPipe
MultiByteToWideChar
GetTimeZoneInformation
GetSystemTimeAsFileTime
SetLastError

comdlg32

ChooseFontW
PageSetupDlgW
ChooseColorA
LoadAlterBitmap

gdi32

SetWindowExtEx
SetPixelFormat
EnumFontFamiliesA
GetDeviceGammaRamp
GetObjectA
OffsetViewportOrgEx
GetLayout
SetArcDirection
CopyMetaFileW
OffsetWindowOrgEx
ExtFloodFill
GetDIBColorTable
UpdateICMRegKeyW
SetStretchBltMode
GetMetaRgn
GetObjectType
PtInRegion
GetSystemPaletteEntries
CombineRgn
CreateSolidBrush
GetCharWidthW
DescribePixelFormat
GetKerningPairsW
GetObjectW
EndDoc

advapi32

CryptDestroyHash
LogonUserW
RegEnumKeyExW

Sections

.text
Size: 373KB - Virtual size: 372KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d60282d2d82a5ae3de914737116d0eb4

Headers

File Characteristics

Imports

user32

comctl32

shell32

kernel32

comdlg32

gdi32

advapi32

Sections

.text Size: 373KB - Virtual size: 372KB

.rdata Size: 20KB - Virtual size: 31KB

.data Size: 105KB - Virtual size: 105KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 373KB - Virtual size: 372KB

.rdata
Size: 20KB - Virtual size: 31KB

.data
Size: 105KB - Virtual size: 105KB

.rsrc
Size: 15KB - Virtual size: 15KB